Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Choose one of the topics below for SD-WAN Resources to help you on your journey with SD-WAN

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC!
We will not comment or assist with your TAC case in these forums.

4129
Views
5
Helpful
17
Replies
Highlighted
FabOrth
Beginner
Beginner
‎11-22-2018 07:23 AM
‎11-22-2018 07:23 AM

SD-WAN vManage Problem with Port 8443

Hi together,

 

I have a problem with the vManage VM. I have an ESXI with the vManage.

 

I did the following steps installing vManage:

 

https://sdwan-docs.cisco.com/Product_Documentation/Getting_Started/Viptela_Overlay_Network_Bringup/03Deploy_the_vManage_NMS/01Create_vManage_NMS_Instance_on_ESXi

 

But the Problem is, vManage is not available. I am on a jump host with no security features. It is with the Server in the same Net. Therefore, i think its not a problem with the firewall...

I can  ping the Vm and it is possible to connect via ssh to the cli but connectiong via https is not possible. (Connection Failure)

The steps to configure are:

# config
(config)# vpn 512
(config)# ip route prefix/length next-hop-ip-address
(config-vpn-512)# interface eth0
(config-interface-eth0)# ip address ip-address
(config-interface-eth0)# no shutdown
(config-interface-eth0)# commit and-quit
#

Website link:

https://ip-address:8443/

 

Do you have any idea to fix the problem?

 

 

Thanks :)

Labels:
3 people had this problem
0 Helpful
Reply
17 REPLIES 17
Highlighted
elesani
Cisco Employee
Cisco Employee
‎11-25-2018 04:36 PM
‎11-25-2018 04:36 PM

Hi, 

 

To help me understand how you have deployed your vManage, can you share the "show run" from it. and also collect "request nms all status" 

 

Regards,
Ehsan

0 Helpful
Reply
Highlighted
FabOrth
Beginner
Beginner
In response to elesani
‎11-25-2018 11:40 PM
‎11-25-2018 11:40 PM

Hello Elesani,

 

enclosed you will find two screenshots. One sh run and the other one is the request nms all status.

The IP-Address is a private one and the next hop is the default gateway

 

Thank you for taking care of the problem.

 

Regards

FabOrth

Preview file
68 KB
Preview file
69 KB
0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
In response to FabOrth
‎02-14-2019 09:45 AM
‎02-14-2019 09:45 AM

I am having the same issue?  Any updates please?

0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
In response to g.ghir
‎02-14-2019 09:47 AM
‎02-14-2019 09:47 AM

BTW, I can SSH and Ping the vManage Server but not HTTPS to it.
0 Helpful
Reply
Highlighted
ekhabaro
Cisco Employee
Cisco Employee
In response to g.ghir
‎02-14-2019 09:55 AM
‎02-14-2019 09:55 AM

You should use tcp port 443: https://sdwan-docs.cisco.com/Product_Documentation/Getting_Started/Viptela_Overlay_Network_Bringup/01Bringup_Sequence_of_Events/Firewall_Ports_for_Viptela_Deployments

8443 is used for clusters and multitenant deployments.
0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
In response to ekhabaro
‎02-14-2019 10:05 AM
‎02-14-2019 10:05 AM

Does not seem to make any difference?

Config:
vmanage# sh run
system
host-name vmanage
admin-tech-on-failure
aaa
auth-order local radius tacacs
usergroup basic
task system read write
task interface read write
!
usergroup netadmin
!
usergroup operator
task system read
task interface read
task policy read
task routing read
task security read
!
usergroup tenantadmin
!
user admin
password $6$HBJoZjMzTIVTzdIa$mQbaGtnVT/R9HDQX7Uzt1dnYaVBE9VTmZvCbCmazSp7mBvCacjwoB3Dd71pNZUTaFGiHzE2lzrLsynyVyFI0h/
!
!
logging
disk
enable
!
!
!
vpn 0
interface eth0
ip dhcp-client
ipv6 dhcp-client
no shutdown
!
!
vpn 512
name ***Management_VPN***
interface eth1
ip address 10.44.136.25/24
no shutdown
!
!
0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
In response to g.ghir
‎02-14-2019 10:09 AM
‎02-14-2019 10:09 AM

vmanage# request nms all status
NMS application server
Enabled: true
Status: waiting
NMS configuration database
Enabled: true
Status: running PID:23460 for 1113s
NMS coordination server
Enabled: true
Status: running PID:23488 for 1113s
NMS messaging server
Enabled: true
Status: not running
NMS statistics database
Enabled: true
Status: running PID:23376 for 1114s
NMS data collection agent
Enabled: true
Status: not running
NMS cloud agent
Enabled: true
Status: running PID:23837 for 1107s
NMS container manager
Enabled: false
Status: not running
NMS SDAVC proxy
Enabled: true
Status: running PID:328 for 6095s
0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
In response to g.ghir
‎02-14-2019 11:18 AM
‎02-14-2019 11:18 AM

Any update?  I am using port 443 but it does not work, as stated earlier network connectivity is good for Ping and SSH.  Any suggestions would be welcome.

0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
In response to g.ghir
‎02-15-2019 01:56 AM
‎02-15-2019 01:56 AM

I ran a port scan on the vManage server running on ESXi and the only ports open are 22 and another ssh port?? Any advice would be welcome at this point as I need to understand if this behaviour is normal?
0 Helpful
Reply
Highlighted
FabOrth
Beginner
Beginner
In response to g.ghir
‎02-15-2019 02:07 AM
‎02-15-2019 02:07 AM

Hello g.ghir,

 

i solved the problem. In my case, the actual server was optimal in terms of specifications. By trying out another one that was even newer, vManage ran optimally.

So try to do vManage on a newer better server with ssd etc.

 

Hope it fixes your problem :)

Reply
Highlighted
g.ghir
Beginner
Beginner
In response to FabOrth
‎02-15-2019 02:10 AM
‎02-15-2019 02:10 AM

Thanks FabOrth,

 

Can you guide me on your final settings within ESXi?  I know vManage is very hungry but as this is an evaluation it is running on a 'skinny' host.  

0 Helpful
Reply
Highlighted
Mi7
Beginner
Beginner
In response to FabOrth
‎03-27-2019 05:57 AM
‎03-27-2019 05:57 AM

what's the exact solution to the issue?

0 Helpful
Reply
Highlighted
mm6646
Beginner
Beginner
‎04-11-2019 06:02 AM
‎04-11-2019 06:02 AM

I Have same problem too, did you get fix the issue?

0 Helpful
Reply
Highlighted
g.ghir
Beginner
Beginner
In response to mm6646
‎04-11-2019 06:46 AM
‎04-11-2019 06:46 AM

My vManage server did not have the horsepower needed so I left it there.
0 Helpful
Reply
Latest Contents
Cisco Secure Network Access Bridges the Gap
Created by Kelli Glass on 02-26-2021 04:19 PM
0
0
0
0
Cisco Secure Network Access is helping IT to bridge the gap between what is essential to the business and what the network delivers and to build the next-generation campus network for an unplugged and uninterrupted experience. Learn more about how these w... view more
Community Live Video - New Additions to the Catalyst 8000 Fa...
Created by Cisco Moderador on 02-24-2021 08:49 AM
0
0
0
0
(view in My Videos) Community Live- New Additions to the Catalyst 8000 Family (Live event -  Tuesday, 23 February, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)- This event had place on Tuesday 23rd, February 2021 at 10:00 hrs PDT... view more
New Additions to the Catalyst 8000 Family- FAQ
Created by Cisco Moderador on 02-24-2021 07:23 AM
0
0
0
0
This event had place on Tuesday 23rd, February 2021 at 10hrs PDT  Introduction Designed for an intent-based network, the Cisco Catalyst 8000 Edge Platforms family offers best-in-class networking and security combined. The platforms, available in b... view more
New Additions to the Catalyst 8000 Family- AMA Event
Created by Cisco Moderador on 02-22-2021 05:26 AM
0
0
0
0
To participate in this event, please use the  button to ask your questions New Additions to the Catalyst 8000 Family This forum is a chance to clarify all your questions related to the Catalyst 8k Family! Designed for an intent-based network, the Ci... view more
Community Live Slides- New Additions to the Catalyst 8000 Fa...
Created by Cisco Moderador on 02-22-2021 05:16 AM
0
0
0
0
Community Live- New Additions to the Catalyst 8000 Family (Live event -  Tuesday, 23 February, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)- This event had  place on Tuesday 23rd, February 2021 at 10:00 hrs PDT  Designed... view more
Content for Community-Ad

This widget could not be displayed.